Extracted

• • Target

    60fb3e93327b8b67ea922445a8e786b24b2e55e62c4136203f787e80a9454979

  • Size

    97KB

  • MD5

    58b3d69a6d661aa5a3317eb63e186501

  • SHA1

    6c5ef21e7cde7680c63182ba30174981edbea260

  • SHA256

    60fb3e93327b8b67ea922445a8e786b24b2e55e62c4136203f787e80a9454979

  • SHA512

    9874801f6a2e94270e33178fb62d97cf5abde144a44d5d167a6cebc9e01dea24e80685d827661a761f00d2feeabc916c9cafc2e6926373ff4f2799f14f0a69da

  • SSDEEP

    1536:1vYywlgkjPMdPhb89o5oiHJt14sXUwXfzwE57pvJXeYZ6:1LwlHLMdPIoOwJt1FPzwm7pJXeK6

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2